$ rpki-client -vvf rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft File: rLhNci0lVbSDPOQGgw_b_pgrfGY.mft (raw, json) Hash identifier: Xyr6VEO6rWQLRBkVLs5C+fCiDEWTjAHwEMhydmSxFWo= Subject key identifier: 8E:6F:94:EB:36:19:95:5A:13:45:AE:7B:06:23:BD:66:0E:D3:E5:C6 Authority key identifier: AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 Certificate issuer: /CN=A9180669/serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Certificate serial: 45 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer Subject info access: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft Manifest number: 44 Signing time: Tue 09 Sep 2025 07:33:08 +0000 Manifest this update: Tue 09 Sep 2025 07:33:08 +0000 Manifest next update: Tue 16 Sep 2025 07:33:08 +0000 Files and hashes: 1: rLhNci0lVbSDPOQGgw_b_pgrfGY.crl (hash: WWbZvuXFtwIR7yfStjNOsQKaYoQFN6t+mEpT4zGFq5o=) 2: 7D1BFC5E24B411F08834DE10C4F9AE02.roa (hash: diVe3oDK8BNzbsZfVF9MUY+tHtrxSbiFO+M9PazMfpE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 16 Sep 2025 07:33:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69 (0x45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A9180669, serialNumber=ACB84D722D2555B4833CE406830FDBFE982B7C66 Validity Not Before: Sep 9 07:33:08 2025 GMT Not After : Sep 16 07:33:08 2025 GMT Subject: CN=68bfd834-0f71 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:1a:06:83:70:4b:f1:b9:c4:a5:63:c8:fe:56: 44:cd:0d:56:e4:ac:a1:ee:51:2e:ce:49:82:7b:4c: 85:06:28:97:14:e3:39:23:2b:9b:05:51:9e:b7:27: 74:f6:16:6b:36:dd:c1:e2:b9:48:13:cf:a9:80:06: d6:92:ba:f5:7f:ed:47:5a:e4:9b:cf:65:12:59:4e: f9:e6:7c:aa:22:4c:91:b0:b6:3a:1d:3e:8e:de:c9: bb:ea:12:08:09:ff:27:20:6c:b7:ea:25:bd:72:72: f8:d5:77:d4:70:4e:5a:3a:36:7a:b6:6d:c0:ba:44: 27:54:16:0d:6b:48:94:09:1f:f2:57:46:bd:1f:79: b9:53:80:92:4e:14:76:72:cc:1b:60:9d:5f:3d:8d: de:13:6c:d7:3a:e8:d0:a7:9c:02:a3:d7:f9:36:3d: 22:a7:c6:cb:08:10:1b:f2:00:66:db:c9:0f:cb:8e: 99:fd:ef:9e:8b:32:42:a9:75:56:b7:42:64:2d:71: 0a:bc:f2:b7:6a:57:3c:93:68:43:00:b8:6a:43:8c: 5c:2f:8e:e1:95:fa:8b:4b:8a:00:a1:74:42:1f:7a: de:f2:da:98:69:10:2e:bb:05:47:40:f2:39:d5:6e: ae:15:49:6a:d3:64:b3:68:24:5b:27:ec:f3:91:67: 35:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6F:94:EB:36:19:95:5A:13:45:AE:7B:06:23:BD:66:0E:D3:E5:C6 X509v3 Authority Key Identifier: keyid:AC:B8:4D:72:2D:25:55:B4:83:3C:E4:06:83:0F:DB:FE:98:2B:7C:66 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rLhNci0lVbSDPOQGgw_b_pgrfGY.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9180669/77E904C824B111F0A05B0064C4F9AE02/rLhNci0lVbSDPOQGgw_b_pgrfGY.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:7c:c2:ab:0a:4d:05:ef:30:10:58:9a:c5:d6:f6:66:ff:3e: 0f:d8:7a:9e:74:49:9b:8d:c1:8e:04:13:7d:c2:bd:98:6a:eb: f6:71:b5:8e:d9:2b:f7:1d:2d:77:e4:95:15:ce:85:3e:0c:73: f0:87:f8:c2:40:b8:26:2e:49:80:ef:6a:08:e3:86:1d:9d:48: 1f:fe:9e:23:e5:08:bb:aa:d8:b3:87:c8:8c:43:04:9f:32:e7: e7:e2:c7:ce:35:ef:f5:49:db:7b:e9:a2:db:90:42:7a:d7:7f: 83:79:3a:ea:81:e5:60:8d:1b:9c:c3:4a:a2:37:1f:d9:8f:e8: 11:b2:1b:c2:51:ac:67:4c:19:1a:b3:73:bb:4b:82:a8:27:f1: e4:56:d2:cd:96:db:09:b6:68:8b:b8:7c:ff:ed:0b:10:ce:fb: f1:fc:fc:e8:51:95:8f:b6:27:27:d3:a5:a6:1a:0e:74:30:05: 36:46:a9:4c:97:4f:4a:e6:fa:33:8e:56:72:0f:5c:86:cf:a6: 6f:c9:c9:73:75:c7:fb:a7:5a:2d:9d:0c:15:9c:63:dd:42:51: f5:04:e1:b2:46:7d:aa:ac:32:80:ec:d7:c4:fa:2c:70:5c:85: 08:12:06:a3:e4:d8:1e:14:03:56:56:3f:66:01:93:3f:8f:1a: 73:26:64:4e -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBRTANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE4 MDY2OTExMC8GA1UEBRMoQUNCODRENzIyRDI1NTVCNDgzM0NFNDA2ODMwRkRCRkU5 ODJCN0M2NjAeFw0yNTA5MDkwNzMzMDhaFw0yNTA5MTYwNzMzMDhaMBgxFjAUBgNV BAMTDTY4YmZkODM0LTBmNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQD3GgaDcEvxucSlY8j+VkTNDVbkrKHuUS7OSYJ7TIUGKJcU4zkjK5sFUZ63J3T2 Fms23cHiuUgTz6mABtaSuvV/7Uda5JvPZRJZTvnmfKoiTJGwtjodPo7eybvqEggJ /ycgbLfqJb1ycvjVd9RwTlo6Nnq2bcC6RCdUFg1rSJQJH/JXRr0feblTgJJOFHZy zBtgnV89jd4TbNc66NCnnAKj1/k2PSKnxssIEBvyAGbbyQ/Ljpn9756LMkKpdVa3 QmQtcQq88rdqVzyTaEMAuGpDjFwvjuGV+otLigChdEIfet7y2phpEC67BUdA8jnV bq4VSWrTZLNoJFsn7PORZzXBAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUjm+U6zYZ lVoTRa57BiO9Zg7T5cYwHwYDVR0jBBgwFoAUrLhNci0lVbSDPOQGgw/b/pgrfGYw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgwNjY5Lzc3RTkwNEM4MjRC MTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJTRFBPUUdnd19iX3BncmZH WS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJG RDFGRjIvckxoTmNpMGxWYlNEUE9RR2d3X2JfcGdyZkdZLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTgw NjY5Lzc3RTkwNEM4MjRCMTExRjBBMDVCMDA2NEM0RjlBRTAyL3JMaE5jaTBsVmJT RFBPUUdnd19iX3BncmZHWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALl8wqsKTQXvMBBYmsXW9mb/Pg/Yep50SZuNwY4EE33CvZhq6/ZxtY7Z K/cdLXfklRXOhT4Mc/CH+MJAuCYuSYDvagjjhh2dSB/+niPlCLuq2LOHyIxDBJ8y 5+fix8417/VJ23vpotuQQnrXf4N5OuqB5WCNG5zDSqI3H9mP6BGyG8JRrGdMGRqz c7tLgqgn8eRW0s2W2wm2aIu4fP/tCxDO+/H8/OhRlY+2JyfTpaYaDnQwBTZGqUyX T0rm+jOOVnIPXIbPpm/JyXN1x/unWi2dDBWcY91CUfUE4bJGfaqsMoDs18T6LHBc hQgSBqPk2B4UA1ZWP2YBkz+PGnMmZE4= -----END CERTIFICATE-----Generated at Tue Sep 9 17:28:52 2025 by rpki-client